Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/41CBB5B87F7611ECAD50FA4EC4F9AE02.roa
File: 41CBB5B87F7611ECAD50FA4EC4F9AE02.roa (raw, json)
Hash identifier: Li0u/U8ueJYpevdQ/gYDnsoDTa8agFy/7wST/iBBAg0=
Subject key identifier: 8B:3E:2D:49:99:84:80:54:E9:A1:7C:79:22:BA:99:15:57:4A:73:48
Certificate issuer: /CN=A9130F9C/serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09
Certificate serial: 0BA4
Authority key identifier: 13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/41CBB5B87F7611ECAD50FA4EC4F9AE02.roa
Signing time: Fri 09 Feb 2024 13:24:50 +0000
ROA not before: Fri 09 Feb 2024 13:24:50 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 134146
IP address blocks: 103.55.144.0/22 maxlen: 24
202.83.124.0/24 maxlen: 24
202.83.126.0/23 maxlen: 23
202.83.126.0/24 maxlen: 24
202.83.127.0/24 maxlen: 24
2400:4fc0::/32 maxlen: 32
2400:4fc0:1::/48 maxlen: 48
2400:4fc0:2::/48 maxlen: 48
2400:4fc0:3::/48 maxlen: 48
2400:4fc0:4::/48 maxlen: 48
2400:4fc0:5::/48 maxlen: 48
2400:4fc0:6::/48 maxlen: 48
2400:4fc0:7::/48 maxlen: 48
2400:4fc0:8::/48 maxlen: 48
2400:4fc0:9::/48 maxlen: 48
2400:4fc0:a::/48 maxlen: 48
2400:4fc0:b::/48 maxlen: 48
2400:4fc0:c::/48 maxlen: 48
2400:4fc0:d::/48 maxlen: 48
2400:4fc0:e::/48 maxlen: 48
2400:4fc0:f::/48 maxlen: 48
2400:4fc0:10::/48 maxlen: 48
2400:4fc0:11::/48 maxlen: 48
2400:4fc0:12::/48 maxlen: 48
2400:4fc0:13::/48 maxlen: 48
2400:4fc0:14::/48 maxlen: 48
2400:4fc0:15::/48 maxlen: 48
2400:4fc0:16::/48 maxlen: 48
2400:4fc0:17::/48 maxlen: 48
2400:4fc0:18::/48 maxlen: 48
2400:4fc0:19::/48 maxlen: 48
2400:4fc0:1a::/48 maxlen: 48
2400:4fc0:1b::/48 maxlen: 48
2400:4fc0:1c::/48 maxlen: 48
2400:4fc0:1d::/48 maxlen: 48
2400:4fc0:1e::/48 maxlen: 48
2400:4fc0:1f::/48 maxlen: 48
2400:4fc0:20::/48 maxlen: 48
2400:4fc0:21::/48 maxlen: 48
2400:4fc0:22::/48 maxlen: 48
2400:4fc0:23::/48 maxlen: 48
2400:4fc0:24::/48 maxlen: 48
2400:4fc0:25::/48 maxlen: 48
2400:4fc0:26::/48 maxlen: 48
2400:4fc0:27::/48 maxlen: 48
2400:4fc0:28::/48 maxlen: 48
2400:4fc0:29::/48 maxlen: 48
2400:4fc0:2a::/48 maxlen: 48
2400:4fc0:2b::/48 maxlen: 48
2400:4fc0:2c::/48 maxlen: 48
2400:4fc0:2d::/48 maxlen: 48
2400:4fc0:2e::/48 maxlen: 48
2400:4fc0:2f::/48 maxlen: 48
2400:4fc0:30::/48 maxlen: 48
2400:4fc0:31::/48 maxlen: 48
2400:4fc0:32::/48 maxlen: 48
2400:4fc0:33::/48 maxlen: 48
2400:4fc0:34::/48 maxlen: 48
2400:4fc0:35::/48 maxlen: 48
2400:4fc0:36::/48 maxlen: 48
2400:4fc0:37::/48 maxlen: 48
2400:4fc0:38::/48 maxlen: 48
2400:4fc0:39::/48 maxlen: 48
2400:4fc0:40::/48 maxlen: 48
2400:4fc0:41::/48 maxlen: 48
2400:4fc0:42::/48 maxlen: 48
2400:4fc0:43::/48 maxlen: 48
2400:4fc0:44::/48 maxlen: 48
2400:4fc0:45::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl
rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 May 2024 19:03:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2980 (0xba4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9130F9C/serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09
Validity
Not Before: Feb 9 13:24:50 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65c627a1-f450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:19:2e:88:0d:29:14:f9:c3:63:9d:dd:3b:cc:
2c:12:27:34:fe:e2:8b:1f:ee:95:15:84:77:30:61:
8f:2b:99:c7:58:cf:41:89:18:fb:3f:c7:3d:3c:d0:
3d:1d:fc:b8:fd:40:fe:ae:fa:d8:ac:c1:d5:29:4b:
08:ec:b9:3c:2b:12:d4:73:e1:70:a1:6e:32:ab:9c:
a9:33:9e:31:f0:69:46:49:55:df:bd:67:b7:d0:9a:
0b:3b:dc:30:fd:df:79:c8:ab:d4:dd:fd:f6:f3:93:
32:8e:23:81:01:d3:5f:1d:28:b4:da:75:27:25:63:
72:26:2b:aa:c0:28:cb:7c:8e:d0:c3:ca:e2:05:32:
d7:7d:8a:88:81:3b:10:8b:90:c8:9f:db:40:00:6d:
53:cb:7a:de:c9:81:00:55:c6:35:0a:fd:40:a4:d0:
dc:01:39:85:db:8b:df:39:fd:7b:a0:39:9b:f6:a8:
aa:ff:33:0b:ec:b6:2e:26:74:51:3d:be:5e:ca:bb:
a4:f5:55:67:4b:c8:7d:6a:d0:57:97:d9:90:13:21:
7f:de:b9:8e:9e:2e:7e:3c:c6:71:e7:ba:88:2b:b9:
ab:8e:c7:43:fe:0c:83:ad:43:ef:80:b4:76:22:ef:
f4:ec:a0:c5:b9:62:3e:6d:f0:ac:c9:b2:9e:1a:bc:
85:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:3E:2D:49:99:84:80:54:E9:A1:7C:79:22:BA:99:15:57:4A:73:48
X509v3 Authority Key Identifier:
keyid:13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/41CBB5B87F7611ECAD50FA4EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.55.144.0/22
202.83.124.0/24
202.83.126.0/23
IPv6:
2400:4fc0::/32
Signature Algorithm: sha256WithRSAEncryption
34:51:19:2d:cf:a3:16:97:82:e9:e3:3f:3f:38:3d:a6:bb:1c:
7d:7d:4e:e1:ef:84:5f:35:75:7f:25:5e:5f:39:5f:a7:bf:7c:
45:7c:38:9e:41:1e:68:cf:ee:bb:41:e1:44:d7:ef:d3:9c:3e:
24:98:ec:00:71:ce:94:6b:10:3c:29:45:86:dc:ab:aa:2f:82:
1c:36:ae:5e:2e:1e:0f:ab:a9:ec:e6:e8:31:c3:9e:51:32:6d:
09:98:75:82:85:81:b3:8b:03:fe:03:d9:3a:09:39:5e:6c:6d:
8e:c0:88:c1:1b:a8:81:dc:b4:67:00:ad:49:cb:cd:2d:c5:3d:
58:86:fd:16:e7:56:0a:6d:e3:65:7f:5d:ca:f6:ce:c9:0a:2f:
46:1d:88:eb:66:07:5a:58:f8:34:42:bc:92:19:54:33:c8:99:
ec:df:27:46:3c:ed:b0:00:b0:56:37:16:de:8b:43:62:bb:da:
d7:cb:33:ff:3f:0d:8e:b7:34:84:7f:10:21:03:b0:bf:d3:86:
1d:a6:e0:d5:34:9c:cd:a7:4d:e5:3d:65:6d:0b:a1:df:73:00:
a7:cb:65:1c:a4:5c:e2:15:cf:d9:2c:2e:84:e6:c7:ca:d0:1d:
41:04:b2:36:cc:d2:3f:cf:87:1e:3f:f9:cd:ee:7d:ff:cb:77:
e6:8a:ad:ba
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgICC6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzBGOUMxMTAvBgNVBAUTKDEzOENEMTBBNDc3OERFMEUzNTkxMUU5QzlDOTQ0RjRC
MjFDNERCMDkwHhcNMjQwMjA5MTMyNDUwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NWM2MjdhMS1mNDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4BkuiA0pFPnDY53dO8wsEic0/uKLH+6VFYR3MGGPK5nHWM9BiRj7P8c9PNA9
Hfy4/UD+rvrYrMHVKUsI7Lk8KxLUc+FwoW4yq5ypM54x8GlGSVXfvWe30JoLO9ww
/d95yKvU3f3285MyjiOBAdNfHSi02nUnJWNyJiuqwCjLfI7Qw8riBTLXfYqIgTsQ
i5DIn9tAAG1Ty3reyYEAVcY1Cv1ApNDcATmF24vfOf17oDmb9qiq/zML7LYuJnRR
Pb5eyruk9VVnS8h9atBXl9mQEyF/3rmOni5+PMZx57qIK7mrjsdD/gyDrUPvgLR2
Iu/07KDFuWI+bfCsybKeGryF1wIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFIs+LUmZ
hIBU6aF8eSK6mRVXSnNIMB8GA1UdIwQYMBaAFBOM0QpHeN4ONZEenJyUT0shxNsJ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY5Qy8yOUNCMDIwRUZB
MEIxMUU5OTc4QjBBMzJDNEY5QUUwMi9FNHpSQ2tkNDNnNDFrUjZjbkpSUFN5SEUy
d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0U0elJDa2Q0M2c0MWtSNmNuSlJQU3lIRTJ3ay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MzBGOUMvMjlDQjAyMEVGQTBCMTFFOTk3OEIwQTMyQzRGOUFFMDIvNDFDQkI1Qjg3
Rjc2MTFFQ0FENTBGQTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E
KzApMBgEAgABMBIDBAJnN5ADBADKU3wDBAHKU34wDQQCAAIwBwMFACQAT8AwDQYJ
KoZIhvcNAQELBQADggEBADRRGS3PoxaXgunjPz84Paa7HH19TuHvhF81dX8lXl85
X6e/fEV8OJ5BHmjP7rtB4UTX79OcPiSY7ABxzpRrEDwpRYbcq6ovghw2rl4uHg+r
qezm6DHDnlEybQmYdYKFgbOLA/4D2ToJOV5sbY7AiMEbqIHctGcArUnLzS3FPViG
/RbnVgpt42V/Xcr2zskKL0YdiOtmB1pY+DRCvJIZVDPImezfJ0Y87bAAsFY3Ft6L
Q2K72tfLM/8/DY63NIR/ECEDsL/Thh2m4NU0nM2nTeU9ZW0Lod9zAKfLZRykXOIV
z9ksLoTmx8rQHUEEsjbM0j/Phx4/+c3uff/Ld+aKrbo=
-----END CERTIFICATE-----
Generated at Thu May 16 19:49:58 2024 by rpki-client on console-fra.rpki-client.org